openSUSE-SU-2016:2273-1

Опубликовано: 09 сент. 2016

Источник: suse-cvrf

Описание

Security update for ocaml

This update for ocaml fixes the following issue:

Security issue fixed:

CVE-2015-8869: Prevent buffer overflow and information leak. (bsc#977990)

This update was imported from the SUSE:SLE-12:Update update project.

Список пакетов

openSUSE Leap 42.1

ocaml-4.02.3-3.2

ocaml-compiler-libs-4.02.3-3.2

ocaml-compiler-libs-devel-4.02.3-3.2

ocaml-docs-4.02.3-3.2

ocaml-emacs-4.02.3-3.2

ocaml-ocamldoc-4.02.3-3.2

ocaml-rpm-macros-4.02.3-3.2

ocaml-runtime-4.02.3-3.2

ocaml-source-4.02.3-3.2

ocaml-x11-4.02.3-3.2

Ссылки

https://lists.opensuse.org/opensuse-updates/2016-09/msg00037.html
E-Mail link for openSUSE-SU-2016:2273-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the String.copy function.

Затронутые продукты

openSUSE Leap 42.1:ocaml-4.02.3-3.2

openSUSE Leap 42.1:ocaml-compiler-libs-4.02.3-3.2

openSUSE Leap 42.1:ocaml-compiler-libs-devel-4.02.3-3.2

openSUSE Leap 42.1:ocaml-docs-4.02.3-3.2

Ссылки

https://www.suse.com/security/cve/CVE-2015-8869.html
CVE-2015-8869
https://bugzilla.suse.com/977990
SUSE Bug 977990

openSUSE-SU-2016:2273-1

Описание

Список пакетов

openSUSE Leap 42.1

Ссылки

Уязвимость: CVE-2015-8869

Описание

Затронутые продукты

Ссылки